Hemanth Thummala discovered that ACLs were not checked when opening files with alternate data streams. This issue is only exploitable if the VFS modules vfs_streams_depot and/or vfs_streams_xattr are used. It is recommended to upgrade your samba packages.
Read more here – http://www.debian.org/security/2013/dsa-2812